Alternatives and similar repositories for URLhaus

Users that are interested in URLhaus are comparing it to the libraries listed below

• VirusTotal / vt-augment
  The VT Augment widget is an official, compliant and recommended way of integrating VirusTotal data in third-party applications.
  ☆37Updated last year
• sandflysecurity / sandfly-setup
  Sandfly Security Agentless Compromise and Intrusion Detection System For Linux
  ☆87Updated 2 months ago
• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆102Updated last year
• davidonzo / apiosintDS
  On demand query API for https://github.com/davidonzo/Threat-Intel project.
  ☆58Updated last year
• pgl / kaseya-revil-cnc-domains
  Kaseya REvil CNC domains
  ☆12Updated last year
• CronUp / Malware-IOCs
  ☆96Updated 7 months ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆63Updated last year
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆85Updated 5 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 4 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆23Updated 9 years ago
• malpedia / malpediaclient
  ☆27Updated 4 months ago
• ninoseki / shimon
  URL fingerprinting made easy
  ☆89Updated last year
• openphish / pyopdb
  ☆76Updated 4 years ago
• malvuln / viruscreds
  Database of backdoor passwords used by Malware, uncovered by the Malvuln project.
  ☆25Updated last year
• mattnotmax / update-cyberchef
  CyberChef update scripts in PowerShell & Bash
  ☆17Updated last year
• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆59Updated 4 years ago
• alexandrosmagos / dyn-dns-list
  This repository contains a comprehensive list of over 30k dynamic DNS domains as of 2024. The list is provided for informational purposes…
  ☆110Updated last week
• InQuest / yara-rules-vt
  Collection of YARA rules designed for usage through VirusTotal.com.
  ☆79Updated last year
• ArsenalRecon / GmailURLDecoder
  Gmail URL Decoder is an Open Source Python tool that can be used against plaintext or arbitrary raw data files in order to find, extract,…
  ☆60Updated 6 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• cocaman / urlhaus
  ☆28Updated 5 months ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆119Updated last year
• ninoseki / ioc-extractor
  An npm package for extracting common IoC (Indicator of Compromise) from a block of text
  ☆58Updated 2 months ago
• abusech / YARAify
  Open YARA scan- and search engine
  ☆25Updated 9 months ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Updated last year
• simeononsecurity / Windows-Hardening-CTF
  A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
  ☆29Updated last year
• trustedsec / defensive-scripts
  ☆45Updated 2 years ago
• qeeqbox / mitre-visualizer
  🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)
  ☆105Updated 3 years ago
• SigmaHQ / Detection-Rule-License
  Detection Rule License (DRL)
  ☆21Updated 11 months ago
• santosomar / log4j-ioc-detector
  A Simple Log4j Indicator of Compromise Linux Detector
  ☆17Updated 3 years ago